Real-Time Monitoring, Reporting & Alerting

Windows file server auditing

Detailed analysis of file storage and access attempts

DataSecurity Plus by ManageEngine is agent-based file reporting and auditing software. You're able to monitor (in real-time) any changes to files in your file system as well as very thorough reports absolutely every activity ("who" did "what", "when" and from "where").

Overview

Real Time File Server Auditing & Reporting Tool

Track all changes made to the file objects in folders, sub-folders and even shared. Also watch for any changes made to a particular type of file - like .log files for instance as well as being able to exclude servers and file types.

In order for your organization's data security policies to be adequate, you need to use a real-time file monitoring tool to continuously to monitor your system files and keep an eye on Compliance standards (like PCI DSS (11.5), Sarbanes-Oxley (Section 404), FISMA (NIST SP800-53) ) as they specifically regulate the need to perform periodic checks for any unauthorized modification of critical files on Windows File servers (system files, configuration files or text files; and ensure a reporting activity for periodic security analysis or for forensics in the event of a security breach.

DataSecurity Plus lets you keep a detailed record of every activity and file access - and be alerted by email of any unusual or critical activities - monitor file permissions, identify file owners and meet those Compliance requirements.

Features

File / Folder Changes

Track any changes to folders or files, and know performed the changes. When a file / folder was created / deleted / modified as well as the Windows File Server name with corresponding location - and WHO made the changes.

Files / Folders Read

Keep track of users who (while not making changes TO a folder or file) read the system file from time to time and perhaps get away with critical information.

Files / Folders Permission Changes

You're able to monitor the access permissions to shares, folders or files that cause the ability to modify system files - and check the DataSecurity Plus reports to identify authorized / unauthorized changes.

Files / Folders Owner Changes

You'll also be able to monitor and maintain a track of any unauthorized changes to ownership of files or folders - or even folder owner replacing / assigning a additional owner.

Files / Folders SACL Changes

Being able to audit a file system object's SACL (system access control list) security settings and ensure that those settings are not tampered with.

Files / Folders Access Denied

Ability to monitor every failed attempt to read / modify / delete a file, folder or share - as well as ability to get real-time email notification alerts before a backdoor event becomes a success.